Re: [jboss-as7-dev] How hard would it be to support key based auth by default to make life simpler and more secure ?

Hi, Been thinking about the new username/password requirements. These will make all examples that uses maven deploy plugin, cli scripts, arquillian, jboss tools etc. to somehow either tell users to type in their username and full password in clear text in pom.xml and other files. Which sounds worse to me than a default locked down to only localhost…but I'm not a security expert :) I was wondering how hard it would be to make the authentication support key based auth by default and we make the tools use ${user.name} and ${user.home}/.jboss/default.pub and .priv (or some other name) for the public/private keys ?